WAN Policies in Micro Edge define the outgoing Internet link for network traffic that meets the criteria you define in WAN Rules.
ETM Dashboard includes several pre-defined WAN Policies based on nonspecific criteria that can apply generally to multiple Micro Edge appliances. These include:
Non LTE WANs - This set of WAN Policies refers to all WAN interfaces except the LTE interface in case the policy is synchronized to an e6wl appliance. The Non LTE WAN policies are designed to identify the optimal WAN link based on Jitter, Latency, or Available Bandwidth.
Specific WANs - This set of WAN Policies refers to specific WAN interfaces. These are useful when defining failover scenarios such as an LTE WAN, or in circumstances where a specific WAN link is preferred regardless of performance metrics.
After synchronizing to Micro Edge appliances, the policies managed by ETM Dashboard appear alongside locally configured WAN Policies.
Note: Centrally managed WAN Policies are editable through the Micro Edge administration, however changes are overwritten during the next synchronization.
Configuring WAN Rules
WAN Rules define the conditions for policy-based routes. For example, you can send traffic to an Internet backup server through a secondary WAN link to preserve bandwidth for real-time communication on the primary WAN link. Each rule must define at least one criterion and a corresponding WAN Policy.
To create a WAN Rule:
- Go to Networks and select a network
- Locate the WAN Rules widget and click Add
- Assign a name to the rule
- Select a criteria (refer to the table below for a description of each criteria)
- Once you define at least one criteria, click Add
- Choose a WAN Policy to specify how to route traffic that meets your criteria
- Click Save
Note: Items you add to the WAN Rule criteria are combined with a logical operator "and". This means that all of the criteria in the rule must evaluate true.
|The name of an application. This input supports a dropdown selector and autocompletion to help you choose an application.
|The type of application based on an associated category. For example, the File Transfer category includes applications such as Dropbox and Microsoft OneDrive.
|Application risk level
|The risk level associated to an application based on a range from 1 to 5, where 5 represents the highest risk. For example, Bittorrent has a risk level of 5.
|Application productivity level
|The productivity level associated to an application based on a range of 1 to 5, where 5 represents the highest level of productivity. For example, Microsoft SharePoint has a productivity level of 5.
|The IPv4 address of a host on the Internet. This criteria maps to the Server address field in the Micro Edge administration.
|A TCP or UDP port. The Protocol selector provides a short list of common protocols. Choose Other to specify a different port.
|The DNS name of an Internet host based on a forward lookup performed by the client application.
|SSL certificate name
|The hostname of a web server based on the common name that is obtained using Server Name Indication (SNI).
Synchronizing WAN Rules
WAN Rules do not synchronize automatically to your appliances. To push a set of WAN Rules, click "Sync rules to appliances". After initiating a sync request, ETM Dashboard enqueues the action and attempts to push the ruleset within a few minutes to all online appliances in the corresponding network.
Note: If the appliance is offline, the task remains pending for up to 7 days. You can initiate a new sync request if the previous request expires and one or more appliances was not able to receive the most current ruleset.
Verifying WAN Rules Synchronization
After a ruleset synchronizes to an appliance, you can view the rules in the Micro Edge web administration. WAN Rules pushed from ETM Dashboard are read-only and are prioritized before rules created through the Micro Edge web administration.
You can review the Audit History for events related to WAN Rules synchronization.Follow